4-1 Short Paper: Responding to a Data Breach

Responding to a Data Breach
Student’s Name
Institution
Responding to a Data Breach
Electronic health records of the patients are susceptible and private. They, therefore, need to be protected from getting into the hands of an authorized person. The HIPPA privacy rule gives health facilities the duty to protect the information. By leaving behind that laptop, therefore, part 160 and part 164 (Section A and E) have already been violated. This is because the facility has failed to secure the data and protect it (HHS.gv, 2015).
The Potential Impact and the Severity of the Incident
The immediate impact of this act is that the information may be accessed by an unauthorized person. Additionally, this crucial data may end up being destroyed or get lost if the person who gets hold of the laptop has ill motives (Martin, Borah & Palmatier, 2017).
The most severe part of such a breach is that the information ends up being used to invade the privacy of the patient by accessing patients’ confidential information. Such a breach may make the patient go ahead and sue the facility create a lawsuit that may tarnish the facilities name (Martin, Borah & Palmatier, 2017).
Phases of Handling Data
The case is challenging since the computer is already stolen. The first reaction is to deactivate any accounts that have the passwords saved on the laptop browser. Then all any password related to a larger database and even for cloud servers should be changed with immediate effect….